(time/R-tzdb) Updated 0.4.0 to 0.5.0, fix build against R-4.6.0
# tzdb 0.5.0
* Updated the time zone database to 2025a (#37).
* Updated the embedded date library
(SHA 32ecb2ad24699963f6c58d74d74bcd8bf7e830a9) (#36, #40).
* cpp11 >=0.5.2 is now required.
* R >=4.0.0 is now required. This is consistent with the standards of the
tidyverse.
x86/efiboot: Put writable variables in .data, not .text.
And define them in the .c file where they're used; no need to have
extra unnecessary .S stuff just to define a global variable.
Based on patch by Paul Ripke to bootx64.efi, adapted for bootia32.efi
too.
PR kern/59151: efiboot hangs on new motherboard
Import unbound 1.25.1 (previous was 1.24.2)
Bug Fixes
Fix CVE-2026-33278, Possible remote code execution during DNSSEC validation.
Thanks to Qifan Zhang, Palo Alto Networks, for the report.
Fix CVE-2026-42944, Heap overflow and crash with multiple nsid, cookie,
padding EDNS options. Thanks to Qifan Zhang, Palo Alto Networks, for the
report.
Fix CVE-2026-42959, Crash during DNSSEC validation of malicious content. Thanks
to Qifan Zhang, Palo Alto Networks, for the report.
Fix CVE-2026-32792, Packet of death with DNSCrypt. Thanks to Andrew Griffiths
from 'calif.io' for the report.
Fix CVE-2026-40622, "Ghost domain name" variant. Thanks to Qifan Zhang, Palo
Alto Networks, for the report.
[25 lines not shown]
firefox140: update to 140.11
Mozilla Foundation Security Advisory 2026-48
Security Vulnerabilities fixed in Firefox ESR 140.11
Announced
May 19, 2026
Impact
high
Products
Firefox ESR
Fixed in
Firefox ESR 140.11
#CVE-2026-8946: Incorrect boundary conditions in the Audio/Video: Web Codecs component
Reporter
zx
[221 lines not shown]
postfix: suggest sasl option
This only allows the cyrus-sasl functionality in postfix. It still
needs to be administratively enabled in postfix, with Cyrus SASL
mechanisms installed seperately.
